When is a 3rd party a 3rd party? For example if a global manufacturer asks one of its UK dealers to submit the details of all customers that had purchased particular items so that they can then call them regarding warranty activations (make sure it's been done), or to offer them free entitlement to things they may not be aware of (a course to help their business develop) would the dealer be in breach of data protection by submitting the info? Would the actual product manufacturer be classed as a 3rd party? I believe they might be but I don't want to dig my heels in if its just making us look awkward and inflexible. im trying to juggle a relationship but also make sure we're not going to break the data protection act
Depends what end user signed. Most contracts of sale have some form of acknowledgement of use of data and opt it/out
Pete 1950 will probably be able to correct me if I'm wrong and a better authority on the matter. As bradders says, it does depend on what the data is used for. If the data collected isn't disseminated then that's one thing, but if its given to a third party company (ie. other than the one which collected the data) then you should be informed that your data has been sold on or shared, albeit 99.9% of entities don't do this. Also you should be told that your data is being stored or collected if its by a commercial entity, and as Bradders says it should be clearly stated that you don't wish to be informed of a cruise that might interest you because you own a ducati / toilet roll etc. But like I say, probably Pete 1950's your best bet on such matters.
I would be more concerned about the OEM having direct contact with your customers. I do not know if this is a repeat sale business or even if you can deny access re warranties. What I do know is that the OEM will then be able to market direct to your current customers.
Tbh if it was my business, I would resist giving contact details. Your customer, your effort, your future revenue. If thats where you're coming from...
In the OP, it is not really clear what the situation is, nor exactly what question you are asking from what perspective. My suggestion is start off by going on the ICO website, which has a great deal of guidance on various topics, look around, and see if your question is answered: Data Protection and Freedom of Information advice - ICrg.uk I presume you are registered, or intend to get registered. If not, you should be. If you still have questions, let's take it from there.
